commit 4472cf44eba4991e46904c588e07dfe8e6fcceb8 · pyrox.dev/nixpkgs

+1 -1

nixos/modules/security/pam.nix

···

       620
       620
        
                 optionalString config.services.homed.enable ''

     

       621
       621
        
                   password sufficient ${config.systemd.package}/lib/security/pam_systemd_home.so

     

       622
       622
        
                 '' + ''

     

       623
       623
       -
                   password sufficient pam_unix.so nullok sha512

     

       623
       623
       +
                   password sufficient pam_unix.so nullok yescrypt

     

       624
       624
        
                 '' +

     

       625
       625
        
                 optionalString config.security.pam.enableEcryptfs ''

     

       626
       626
        
                   password optional ${pkgs.ecryptfs}/lib/security/pam_ecryptfs.so

+1 -1

nixos/modules/services/x11/display-managers/gdm.nix

···

       323
       323
        
       

     

       324
       324
        
               account   sufficient    pam_unix.so

     

       325
       325
        
       

     

       326
       326
       -
               password  requisite     pam_unix.so nullok sha512

     

       326
       326
       +
               password  requisite     pam_unix.so nullok yescrypt

     

       327
       327
        
       

     

       328
       328
        
               session   optional      pam_keyinit.so revoke

     

       329
       329
        
               session   include       login

+1 -1

nixos/modules/services/x11/display-managers/lightdm.nix

···

       302
       302
        
       

     

       303
       303
        
               account   sufficient    pam_unix.so

     

       304
       304
        
       

     

       305
       305
       -
               password  requisite     pam_unix.so nullok sha512

     

       305
       305
       +
               password  requisite     pam_unix.so nullok yescrypt

     

       306
       306
        
       

     

       307
       307
        
               session   optional      pam_keyinit.so revoke

     

       308
       308
        
               session   include       login

+1 -1

nixos/tests/pam/test_chfn.py

···

       8
       8
        
           "auth sufficient pam_rootok.so",

     

       9
       9
        
           "auth sufficient pam_unix.so   likeauth try_first_pass",

     

       10
       10
        
           "password sufficient @@pam_krb5@@/lib/security/pam_krb5.so use_first_pass",

     

       11
       11
       -
           "password sufficient pam_unix.so nullok sha512",

     

       11
       11
       +
           "password sufficient pam_unix.so nullok yescrypt",

     

       12
       12
        
           "session optional @@pam_krb5@@/lib/security/pam_krb5.so",

     

       13
       13
        
           "session required pam_env.so conffile=/etc/pam/environment readenv=0",

     

       14
       14
        
           "session required pam_unix.so",

+1 -1

pkgs/build-support/docker/default.nix

···

       190
       190
        
             cat > /etc/pam.d/other <<EOF

     

       191
       191
        
           account sufficient pam_unix.so

     

       192
       192
        
           auth sufficient pam_rootok.so

     

       193
       193
       -
           password requisite pam_unix.so nullok sha512

     

       193
       193
       +
           password requisite pam_unix.so nullok yescrypt

     

       194
       194
        
           session required pam_unix.so

     

       195
       195
        
           EOF

     

       196
       196
        
           fi